Unix and Linux Stack Exchange
Unix and Linux Stack Exchange

Questions tagged [letsencrypt]

67 questions
18
votes
4 answers

Certbot add www domain to existing domain certificate

I have installed an SSL certificate from Let's Encrypt with Certbot on my Apache server with Debian 8 following this tutorial from Let's Encrypt's own documentation: https://certbot.eff.org/#debianjessie-apache $ certbot --apache You need to…
Robbert
  • 303
  • 1
  • 2
  • 7
13
votes
2 answers

Let's Encrypt - Apache - OCSP stapling

I would like to enable OCSP stapling in my Apache server. I'm using: Server: Apache/2.4.7 on Ubuntu Certificate: Let's Encrypt To the file: /etc/apache2/sites-available/default-ssl.conf I added: SSLUseStapling on Then, I…
NineCattoRules
  • 181
  • 1
  • 7
7
votes
3 answers

Installing Let's Encrypt on Amazon Linux 2023

I am trying to get SSL certificate with Let's Encrypt nginx on Amazon Linux 2023. First, I added EPEL using the commands wget https://dl.fedoraproject.org/pub/epel/epel-release-latest-8.noarch.rpm and sudo rpm -ihv --nodeps…
Sanmi Akande
  • 71
  • 1
  • 3
5
votes
1 answer

How can I add subdomains to letsencrypt using certbots?

I have certbot installed and successfully use it to encrypt my homepage. Now i tried to setup an email system for my website using dovecot and postfix. I got it mostly running, only problem is, that thunderbird gives me a warning about the adress…
user2741831
  • 203
  • 2
  • 6
4
votes
0 answers

Uninstall all changes made by Letsencrypt

I installed Letsencrypt during the beta, following the instructions in the email, and now it seems broken on my debian jessie server. I try to uninstall letsencrypt and want to start over with my (misconfigured apache) What I did: mkdir -p…
rubo77
  • 27,777
  • 43
  • 130
  • 199
3
votes
2 answers

Install Let's Encrypt SSL certificate on Oracle Linux Server

I am trying to install a Let's Encrypt certificate on a Oracle Linux Server 7.6. Since the server does not have a public IP, I had to validate via DNS.I followed the instructions here https://github.com/joohoi/acme-dns-certbot-joohoi and the…
cflasrado
  • 33
  • 1
  • 5
3
votes
2 answers

How to do mass virtual hosting with lets encrypt?

I have 2500 public domains (like www.example.com, example.com, www.example.net, and example.net) running on a single IP-address using Apache VirtualHost. I want to setup letsencrypt for all these domains. What is the recommended way of doing that?…
Ole Tange
  • 33,591
  • 31
  • 102
  • 198
3
votes
2 answers

How to validate / fix an error in Certbot renewal cron

The whole day, I am fixing bugs in mainly TLS area, but this question is not specifically about TLS. Well, I have one web server with a few web sites, each with its own SSL certificate. But to the point, I managed to install Certbot version 0.19.0…
Vlastimil Burián
  • 27,586
  • 56
  • 179
  • 309
3
votes
4 answers

Automating OpenSSL certificates creation, Let'sEncrypt signing, and site dir associating, in an Nginx environment

I have an Ubuntu-server 16.04 VPS and Nginx. Now I'm implementing HTTP1 (without TLS, utilizing port 80) but I desire to go "one step forward" and work with HTTP2 (with TLS, utilizing port 443), for all my (Wordpress) websites. Assuming I adjusted…
user149572
3
votes
2 answers

Certbot for multiserver configuration

Is there a way to use certbot and letsencrypt certificate for multiserver setup without having to manually copy the certificates from one node to another? I have a domain name example.com which is resolved to 192.0.2.1 in Americas and to 192.0.2.2…
rush
  • 27,055
  • 7
  • 87
  • 112
2
votes
2 answers

How to add and delete a temporary nftables accept rule

To get and renew a Letsencrypt certificate, I need to open the http port 80 while certbot is running, and close it afterwards. (There is no normal web service in this server). With iptables I used these commands in the letsencrypt…
mivk
  • 3,446
  • 29
  • 31
2
votes
1 answer

OpenBSD, relayd and acme-client: Unable to read TLS-certs for subdomains: "Empty reply from server"

OpenBSD server with relayd/httpd/acme-client. Attempting to run https://mydomain.com (app server on port 32489), https://webmail.mydomain.com (48293) and https://forum.mydomain.com (28192). All three sites share the same TLS-cert. Regular HTTP is…
Mark Boulder
  • 141
  • 3
2
votes
1 answer

Can I install a Let'sEncrypt ssl certificate before I configure a virtual host?

Assuming I am not close on which web server to use, Apache or Nginx but I still want to be over with the SSL certification procedure, can I install a Let'sEncrypt ssl certificate before I configure a virtual host?
automation
  • 57
  • 4
2
votes
2 answers

Mosquitto unable to use certificates from letsencrypt

I am trying to set up Mosquitto using this guide: https://www.digitalocean.com/community/tutorials/how-to-install-and-secure-the-mosquitto-mqtt-messaging-broker-on-ubuntu-18-04 I am using ubuntu 20.04 but I couldn't find any Focal-specific…
Stonecraft
  • 779
  • 2
  • 13
  • 29
2
votes
1 answer

Sudden "no "ssl_certificate" is defined for the "listen ... ssl" error

I have a config like this which has worked for years: server { listen 80; server_name www.domain.com domain.com; return 301 https://domain.com$request_uri; } # !!!! # line 10 server { listen 443 ssl http2; …
Dajaku
  • 29
  • 1
  • 2
1
2 3 4 5